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Listing of Claims: 

Claims 1-47 (cancelled). 

Claim 48: (Currently Amended) An apparatus comprising: 
a processor configured to: 

first e l e ctronic k e y d e vic e authorized to unlock an e l e ctronic lock d e vice and 

configur e d to generate an electronic ticket for providing an s e cond electronic key device 
authorization to unlock the-an electronic lock device, the electronic ticket comprising a public 
key corresponding to the s econd electronic key device and a link key configured to authenticate 
an identity of the electronic lock device. 

wherein the apparatus is authorized to unlock the electronic lock device, 

wherein the ticket is transmittable from the first e l e ctronic key devic e apparatus to the 

second electronic key device and wherein the ticket is electronically signed by the fir s t electronic 
k e y d e vic e apparatus using a private key of the first el e ctronic k e y d e vic e apparatus , 

wherein the public key corresponding to the s e cond electronic key device is configured to 

decrypt a code issued by the electronic lock device and encrypted by the s e cond electronic key 
device , and 

wherein the link key of the electronic ticket is generated using a one-way hash of a link 

key of the apparatus and a lock identifier of the electronic lock device . 

Claim 49: (Currently Amended) The apparatus according to claim 48, wherein the first k e y 
devie eprocessor is further configured to wirelessly communicate using Bluetooth short range 
communication protocol. 

Claim 50: (Currently Amended) The apparatus according to claim 48, wherein said 
electronic lock device is a virtual lock device in a form of a software module controlling access 
to a_digital resources. 

Claim 51: (Previously Presented) The apparatus according to claim 48, wherein said 
electronic lock device stores public keys for a plurality of authorized key holders. 
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Claim 52: (Currently Amended) The apparatus according to claim 48, wherein the public 
key is stored in a plurality of lock devices for which entry is authorized for the first key 
devieea pparatus . 

Claim 53: (Currently Amended) The apparatus according to claim 48, wherein a different 
public key is stored in each lock device for which entry is authorized for the apparatus first key 
d e vice . 

Claim 54: (Currently Amended) The apparatus according to claim 48, wherein at least one 
of the fet -apparatus and the s e cond electronic key devices comprises a portable wireless device. 

Claim 55: (Currently Amended) The apparatus according to claim 54, wherein at least one 
of the fes ^apparatus and theseeend electronic key devices comprises a wireless telephone. 

Claim 56: (Currently Amended) The apparatus according to claim 54, wherein at least one 
of the fifs ^apparatus and theseeeftd electronic key devices is wearable by a user. 

Claim 57: (Currently Amended) The apparatus according to claim 48, wherein the first key 
devleea pparatus further comprises includ e s a power source, a proc e ssor, non-volatile memory 
and a transmitter/receiver unit. 

Claim 58: (Currently Amended) The apparatus according to claim 57, wherein at least one 
of the fifst -apparatus and theseeend electronic key devices further includes a user authentication 
device. 

Claim 59: (Currently Amended) An apparatus comprising: 
a processo r first e lectronic k e y d e vic e configured to: 

receive at least one electronic ticket transmitted fi"om an s e cond electronic key 
device authorized to unlock an electronic lock device, wherein the at least one received 
electronic ticket comprises a public key corresponding to the first key dovice apparatus and a link 
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key configured to authenticate an identity of the electronic lock device, wherein the link key of 
the electronic ticket is generated using a one-way hash of a link key of the electronic kev device 
and a lock identifier of the electronic lock device . 

transmit the at least one electronic ticket to the electronic lock device, 

receive a code issued by the electronic lock device, 

encrypt the code using a private key of the first e lectronic kev device apparatus, 

and 

transmit the encrypted code to the electTonic lock device first e l e ctronic k e v 
devic e, wherein the public key of the first el e ctronic key devic e apparatus us-ls_configured to 
decrypt the encrypted code. 

Claim 60: (Previously Presented) The apparatus according to claim 59, wherein said 
electronic lock device is a virtual lock device in a form of a software module controlling access 
to digital resources. 

Claim 61 : (Previously Presented) The apparatus according to claim 60, wherein the at least 
one electronic ticket grants access to at least part of said digital resources. 

Claim 62: (Previously Presented) The apparatus according to claim 59, wherein the at least 
one electronic ticket further includes one or more access limits. 

Claim 63: (Previously Presented) The apparatus according to claim 62, wherein the one or 
more access limits includes time of day. 

Claim 64: (Previously Presented) The apparatus according to claim 62, wherein the one or 
more access limits includes authorization to generate fiirther electronic tickets. 

Claim 65: (Previously Presented) The apparatus according to claim 59, wherein the at least 
one electronic ticket is transmittable to one or more lock devices. 
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Claim 66: (Previously Presented) The apparatus according to claim 65, wherein said 
electronic lock device is a virtual lock device in a form of a software module controlling access 
to digital resources. 

Claim 67: (Previously Presented) The apparatus according to claim 66, wherein at least one 
electronic ticket grants access to at least part of the digital resources. 

Claim 68: (Currently Amended) The apparatus according to claim 59, wherein at least one 
of the fifst-a pparatus and seeen^the electronic key devices includes a display for indicating the 
number of available electronic tickets. 

Claim 69: (Previously Presented) The apparatus according to claim 59, wherein the at least 
one electronic ticket includes an expiration date. 

Claim 70: (Previously Presented) The apparatus according to claim 59, wherein the at least 
one electronic ticket includes a time of day restriction. 

Claim 71: (Previously Presented) The apparatus according to claim 70, wherein said 
additional information contains user-related information. 

Claim 72: (Currently Amended) The apparatus according to claim 59, wherein the s e cond 
electronic key device stores additional information unrelated to the private key. 

Claim 73: (Previously Presented) The apparatus according to claim 72, wherein said 
additional information comprises a Social Security number. 

Claim 74: (Currently Amended) The apparatus according to claim 59, wherein at least one 
of the fifst-a pparatus and the s e cond electronic key devices includes a personal identification 
number. 



Page 5 of 14 



AppIn.No.: 09/976,091 

Reply to Office Action of July 3, 2008 

Claim 75: (Currently Amended) The apparatus according to claim 59, wherein at least one 
of the first electronic key d e vic ea pparatus, the seeend-electronic key device and said electronic 
lock device includes authentication -information in the form of coded information known to a 
user. 

Claim 76: (Currently Amended) The apparatus according to claim 59, wherein at least one 
of the first e l e ctronic key d e vice apparatus. the seeefjd-electronic key device and said electronic 
lock device includes authentication -information in the form of a physical feature of a user. 

Claim 77: (Previously Presented) The apparatus according to claim 59, wherein said 
electronic lock device stores a list of invalid key devices, and denies authorization to any one of 
the key devices in the list of invalid key devices. 

Claim 78: (Previously Presented) The apparatus according to claim 59, wherein said 
electronic lock device stores a use counter for n-use electronic tickets. 

Claim 79: (Previously Presented) The apparatus according to claim 59, wherein said 
electronic lock device includes an identification number where the identification number is 
hierarchical in relation to one or more other lock device identification numbers. 

Claim 80: (Currently Amended) An apparatus comprising: 
an el e ctronic lock devic e a processor configured to: 

receive, from a first electronic key device, a ticket comprising a public key of the 
first electronic key device and a link key configured to authenticate an identity of the apparatus, 
wherein the link key of the electronic ticket is generated using a one-way hash of a link key of 
the first electronic key device and a lock identifier of the apparatus, wherein the ticket is 
generated by a second key device authorized to unlock the olectronic lock devic e apparatus and 
wherein the ticket is electronically secured by a private key of the second electronic key device, 

issue a code to the first electronic key device, 
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receive an encrypted code corresponding to the issued code encrypted using a 
private key of the first electronic key device, 

determine a decrypted code by decrypting the encrypted code using the public key 
of the first electronic key device, and 

determine whether the decrypted code matches the issued code. 

Claim 81 : (Currently Amended) The apparatus according to claim 80, wherein the 
olectronic lock d e vic e apparatus is a virtual lock device for controlling access to digital resources. 

Claim 82: (Previously Presented) The apparatus according to claim 80, wherein at least one 
of the first and second electronic key devices is not user-interactive. 

Claim 83: (Previously Presented) The apparatus according to claim 80, further comprising 
the second electronic key device, the second electronic key device including a control device 
configured to load the private key into the second electronic key device remotely and 
electronically. 

Claim 84: (Previously Presented) The apparatus according to claim 83, wherein the control 
device further loads data into at least one other key device. 

Claim 85: (Previously Presented) The apparatus according to claim 83, wherein 
confirmation data is input into the control device which forwards confirmation to the second 
electronic key device. 

Claims 86-91: (Cancelled). 

Claim 92: (Currently Amended) A method comprising: 

generating a ticket on a first key device, wherein the first key device is authorized to 
unlock an electronic lock device, and wherein the ticket includes a public key of a second key 
device and a link key configured to authenticate an identity of the electronic lock device, wherein 
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the link key of the electronic ticket is generated using a one-way hash of a link key of the first 

key device and a lock identifier of the electronic lock device : 

electronically securing the ticket with a private key of the first key device; and 
transmitting the ticket addressed to the second key device, wherein the public key of the 

second key device is configured to decrypt a code issued by the electronic device and encrypted 

by the second key device. 

Claims 93-94. (Cancelled). 

Claim 95: (Previously Presented) The method of claim 92, wherein the first key device is a 
mobile device. 

Claim 96: (Previously Presented) The method of claim 92, wherein the ticket includes one 
or more use limits. 

Claim 97: (Previously Presented) The method of claim 96, wherein the one or more use 
limits includes a time of day restriction. 

Claim 98: (Previously Presented) The method of claim 96, wherein the one or more use 
limits includes an indication as to whether tickets may be generated by the second key device. 

Claim 99: (Currently Amended) A method comprising: 

receiving, at a first key device, a ticket from a second key device, wherein the second key 
device is authorized to unlock an electronic lock device, and wherein the ticket comprises a 
public key corresponding to the first key device and a link key configured to authenticate an 
identity of the electronic lock device, wherein the link key of the electronic ticket is generated 
using a one-way hash of a link key of the second key device and a lock identifier of the 
electronic lock device and wherein the ticket is secured by a private key of the second key 
device, 

transmitting the ticket addressed to the electronic lock device, 
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receiving a code issued by the electronic lock device, 

encrypting the code using a private key of the first key device, and 

transmitting the encrypted code addressed to the First k e y device electronic lock device . 

Claim 100: (Previously Presented) The method of claim 99, wherein the ticket includes 
one or more use limits. 

Claim 101: (Previously Presented) The method of claim 100, wherein the one or more 
use limits includes a time of day restriction. 

Claim 102: (Cancelled). 

Claim 103: (Currently Amended) A method comprising: 

receiving, from a first electronic key device, a ticket comprising a public key of the first 
electronic key device and a link key configured to authenticate an identit\^ of an electronic lock 
device, wherein the link key of the ticket is generated using a one-w^ay hash of a link key of a 
second electronic key device and a lock identifier of the electronic lock device , wherein the 
ticket is generated by a -the second key device authorized to unlock the electronic lock device and 
wherein the ticket is electronically secured by a private key of the second electronic key device, 

issuing a code to the first electronic key device, 

receiving an encrypted code corresponding to the code encrypted using a private key of 
the first electronic key device,-an4 

determining a decrypted code by decrypting the encrypted code using the public key of 
the first electronic key device, and 

determining whether the decrypted code matches the issued code. 

Claim 104: (Currently Amended) The method of claim 103, further comprising unlocking a 
physical lock device in response to determining that the decrypted code matches the issued code. 
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Claim 105: (Previously Presented) The method of claim 103, wherein the issued code 
comprises a number. 

Claim 106: (Cancelled). 

Claim 107: (Cancelled). 

Claim 108: (New) One or more computer readable media storing computer readable 
instructions that, when executed, cause a processor to perform a method comprising: 

receiving, from a first electronic key device, a ticket comprising a public key of the first 
electronic key device and a link key configured to authenticate an identity of an electronic lock 
device, wherein the link key of the ticket is generated using a one-way hash of a link key of a 
second electronic key device and a lock identifier of the electronic lock device, wherein the 
ticket is generated by the second key device authorized to unlock the electronic lock device and 
wherein the ticket is electronically secured by a private key of the second electronic key device, 

issuing a code to the first electronic key device, 

receiving an encrypted code corresponding to the code encrypted using a private key of 
the first electronic key device, 

determining a decrypted code by decrypting the encrypted code using the public key of 
the first electronic key device, and 

determining whether the decrypted code matches the issued code. 

Claim 109: (New) The one or more computer readable media of claim 108, further 
comprising instructions for unlocking a physical lock device in response to determining that the 
decrypted code matches the issued code. 

Claim 110: (New) The one or more computer readable media of claim 108, wherein the 
issued code comprises a number. 
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Claim 111: (New) One or more computer readable media storing computer readable 
instructions that, when executed, cause a processor to perform a method comprising: 

receiving, at a first key device, a ticket from a second key device, wherein the second key 
device is authorized to unlock an electronic lock device, and wherein the ticket comprises a 
public key corresponding to the first key device and a link key configured to authenticate an 
identity of the electronic lock device, wherein the link key of the electronic ticket is generated 
using a one-way hash of a link key of the second key device and a lock identifier of the 
electronic lock device and wherein the ticket is secured by a private key of the second key 
device, 

transmitting the ticket addressed to the electronic lock device, 
receiving a code issued by the electronic lock device, 
encrypting the code using a private key of the first key device, and 
transmitting the encrypted code addressed to the electronic lock device. 

Claim 1 12: (New) The one or more computer readable media of claim 111, wherein the ticket 
includes one or more use limits. 

Claim 113: (New) The one or more computer readable media of claim 1 12, wherein the one 
or more use limits includes a time of day restriction. 

Claim 1 14: (New) One or more computer readable media storing computer readable 
instructions that, when executed, cause a processor to perform a method comprising: 

generating a ticket on a first key device, wherein the first key device is authorized to 
unlock an electronic lock device, and wherein the ticket includes a public key of a second key 
device and a link key configured to authenticate an identity of the electronic lock device, wherein 
the link key of the electronic ticket is generated using a one-way hash of a link key of the first 
key device and a lock identifier of the electronic lock device; 

electronically securing the ticket with a private key of the first key device; and 
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transmitting the ticket addressed to the second key device, wherein the public key of the 
second key device is configured to decrypt a code issued by the electronic device and encrypted 
by the second key device. 

Claim 115: (New) The one or more computer readable media of claim 1 14, wherein the first 
key device is a mobile device. 

Claim 116: (New) The one or more computer readable media of claim 1 14, wherein the 
ticket includes one or more use limits. 
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